Share this page!

Hossein NafisiAsl Profile picture
Twitter logo
May 18 12 tweets 10 min read
#Secret4
Top 9 Tools to Automate Work with Dorks ⚔️

+ Top 9 Dork Collection that Every Hunter Needs 🗒️

#bugbountytip 🧵👇🏻
1/ Top 9 tools to automate work with dorks

github.com/IvanGlinkin/Fa…
github.com/rlyonheart/0xd…
github.com/TheSpeedX/SDor…
github.com/ankitdobhal/As…
github.com/opsdisk/pagodo
github.com/Smaash/snitch
github.com/BullsEye0/dork…
github.com/TebbaaX/Katana
github.com/dwisiswant0/go…
2/ Google dorks

github.com/BullsEye0/goog…
github.com/sushiwushi/bug…
github.com/rootac355/SQL-…
github.com/unexpectedBy/S…
github.com/thomasdesr/Goo…
github.com/arimogi/Google…
github.com/aleedhillon/70…
3/ GitHub dorks

github.com/techgaun/githu…
github.com/jcesarstef/ghh…
github.com/H4CK3RT3CH/git…
github.com/Vaidik-pandya/…
4/ Shodan dorks

github.com/blaCCkHatHacEE…
github.com/humblelad/Shod…
github.com/AustrianEnergy…
github.com/lothos612/shod…
github.com/jakejarvis/awe…
github.com/IFLinfosec/sho…
osintme.com/index.php/2021…
5/ CCTV dorks

github.com/cipher387/Dork…
github.com/iveresk/camera…
6/ DuckDuckGo dorks

github.com/d34dfr4m3/goDu…
7/ CMS dorks

pastebin.com/A9dsmgHQ
pastebin.com/k75Y2QhF
pastebin.com/vVQFTzVC
8/ Bug Bounty dorks

github.com/hackingbharat/…
github.com/Vinod-1122/bug…
9/ Backlink dorks

github.com/alfazzafashion…
techywebtech.com/2021/08/backli…
10/ Cloud Instance dorks

github.com/cipher387/Dork…
github.com/cipher387/Dork…
github.com/cipher387/Dork…
11/
Dork Tools & Collection Lists
By 'Hossein NafisiAsl'
github.com/NafisiAslH/Kno…

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Hossein NafisiAsl

Hossein NafisiAsl Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @MeAsHacker_HNA

Hossein NafisiAsl Profile picture
May 17
How I get RCE via Dependency Confusion 💎

#bugbountytips 🧵👇🏻
1/ Introduction 📖

Dependency Confusion occurs when software installer script is tricked into pulling malicious code file from public repository.

How I found this bug?
2/ Recon 🔦

1⃣ I started with some Shodan recon and I found a IP that belongs to TARGET.

2⃣ Using directory brute forcing tools like Dirsearch and FFUF, I found a package.json file contained all the packages which was installed in the server.
URL: /ui/package.json
Read 7 tweets
Hossein NafisiAsl Profile picture
May 16
#Secret3
6 Questions that Guarantee your Bounty 😈

#bugbountytips👇🏻🧵
1/
 How does the app pass data?

parameter or path?
2/
 How/Where does app Talk about users?

Cookie or API Calls?

uid or username or email or uuid?
Read 8 tweets
Hossein NafisiAsl Profile picture
May 12
How We hacked Admin Panel just by JS file:
(step by step)
#bugbounty #bugbountytips

🧵👇🏻
1/ Introduction 📖

Team gave mobile app and website.

We didn’t waste of time on mobile app and decided to work on website.

We just tried to find Admin Panel because main domain was just a single page to download the app.
2/ Subdomain Enumeration 🔎

After brute forcing the subdomains we found that website had a subdomain like that admin.target.com

When we visited the subdomain we just got that Login Portal
Read 8 tweets
Hossein NafisiAsl Profile picture
May 11
Have you ever get bounty by using default credentials?
Read this thread 🔥

#bugbountytips
🧵👇🏻
You need to have a special word list for each vendor.

This thread has most known vendors default credentials that gathered from several sources.

Default Credentials for Apache Tomcat:
2/
Default Credentials for Cisco
Read 8 tweets
Hossein NafisiAsl Profile picture
Mar 16
#Secret2
Bug Bounty with One-Line Bash Scripts💵😎

You can mention your favorite script. I will add them to this thread.
#BugBounty #BugBountyTip
#100BugBountySecrets
🧵👇🏻
1/ #Secret2

🎯 Hunt #XSS:
👉🏻 cat targets.txt | anew | httpx -silent -threads 500 | xargs -I@ dalfox url @
👉🏻 cat targets.txt | getJS | httpx --match-regex "addEventListener\((?:'|\")message(?:'|\")"

#BugBounty #BugBountyTip
#100BugBountySecrets
🧵👇🏻
2/ #Secret2

🎯 Hunt #SQLi:
👉🏻httpx -l targets.txt -silent -threads 1000 | xargs -I@ sh -c 'findomain -t @ -q | httpx -silent | anew | waybackurls | gf sqli >> sqli ; sqlmap -m sqli --batch --random-agent --level 1'

#BugBounty #BugBountyTip
#100BugBountySecrets
🧵👇🏻
Read 13 tweets
Hossein NafisiAsl Profile picture
Mar 9
#Secret1
Top 10 Automatic Recon Tools

#Recon #BugBounty
#100BugBountySecrets
🧵👇
1/
R3C0Nizer is the first ever CLI based menu-driven automated web application B-Tier recon framework ...
github.com/Anon-Artist/R3…

#Recon #BugBounty
#100BugBountySecrets
🧵👇
2/
scant3r is a module-based web security tool, our goal is to make customizable tool with providing many functions and features that what you need for write a security module....
github.com/knassar702/sca…

#Recon #BugBounty
#100BugBountySecrets
🧵👇
Read 11 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

:(